← Back

CVE-2019-6319

nvd nist
Published: Jan 9, 2020Modified: Nov 21, 2024

JSON object

Loading...
8.1
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
Exploitability: 2.8 / Impact: 5.2
Source: NVD

Description

HP DeskJet 3630 All-in-One Printers models F5S43A - F5S57A, K4T93A - K4T99C, K4U00B - K4U03B, and V3F21A - V3F22A (firmware version SWP1FN1912BR or higher) have a Cross-Site Request Forgery (CSRF) vulnerability that could lead to a denial of service (DOS) or device misconfiguration.

Affected (8)

Hp
8 products
Deskjet 3630 F5s43a Firmware
Deskjet 3630 F5s57a Firmware
Deskjet 3630 K4t93a Firmware
Deskjet 3630 K4t99c Firmware
Deskjet 3630 K4u00b Firmware
Deskjet 3630 K4u03b Firmware
Deskjet 3630 V3f21a Firmware
Deskjet 3630 V3f22a Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Deskjet 3630 F5s43a Firmware
Before swp1fn1912br
Running on/withPlatform Versions
Hp
Deskjet 3630 F5s43a
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Deskjet 3630 F5s57a Firmware
Before swp1fn1912br
Running on/withPlatform Versions
Hp
Deskjet 3630 F5s57a
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Deskjet 3630 K4t93a Firmware
Before swp1fn1912br
Running on/withPlatform Versions
Hp
Deskjet 3630 K4t93a
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Deskjet 3630 K4t99c Firmware
Before swp1fn1912br
Running on/withPlatform Versions
Hp
Deskjet 3630 K4t99c
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Deskjet 3630 K4u00b Firmware
Before swp1fn1912br
Running on/withPlatform Versions
Hp
Deskjet 3630 K4u00b
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Deskjet 3630 K4u03b Firmware
Before swp1fn1912br
Running on/withPlatform Versions
Hp
Deskjet 3630 K4u03b
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Deskjet 3630 V3f21a Firmware
Before swp1fn1912br
Running on/withPlatform Versions
Hp
Deskjet 3630 V3f21a
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Deskjet 3630 V3f22a Firmware
Before swp1fn1912br
Running on/withPlatform Versions
Hp
Deskjet 3630 V3f22a
All versions

Related CWEs

CWE-352
Cross-Site Request Forgery (CSRF)
The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

References (2)

Source: hp-security-alert@hp.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.